Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
vbandha
Staff
Staff

Created on ‎07-27-2024 11:08 PM

Article Id 328492

Troubleshooting Tip: Search logs for who accessed a website

Description This article describes how to search the logs for who accessed a website.
Scope FortiOS 6.4+.
Solution

To have logs available for website access, it is necessary to configure the firewall policy to have the ‘Log Allowed Traffic’ option set to ‘All Sessions’.

 

1.JPG

 

The next thing, it is necessary to find the IP of the website. The search will be a lot more difficult if the website resolves to multiple IPs.

 

If the website resolves to only one IP then the search will be easy. To get the IP address of the website, go to a web browser. This example uses Chrome:

 

'Right-click' in the browser and select ‘Inspect’.

In the tab opened, select the ‘Network’ option :

 

2.JPG

 

After this open the website. This test uses example.com:

 

3.JPG

 

Here it will show the IP on the Network tab, under Remote Address.

 

Once having the IP address of the website, it is possible to go to FortiGate GUI under Log & Report-> Forward Traffic.

Here, select ‘Add Filter’ and Select ‘Destination’.

 

It is possible to enter the IP of the website and it will search the logs for that:

 

4.JPG
Labels:
1876
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.